Dedecms template soft_add.phpSQL injection vulnerability repair method

Others 2022-04-28 21:58:29 views: 0

In /member/soft_add.php of dedecms, the input template parameter $servermsg1 is not strictly filtered, so that the attacker can construct the template closing tag and realize the template injection for GETSHELL.

Open the file /member/soft_add.php and search (about line 154):

$urls .="{dede:link islocal='1' text='{$servermsg1}'} $softurl1 {/dede:link}\r\n";

Replace with:

if(preg_match("#}(.*?){/dede:link}{dede:#sim", $servermsg1)!=1){
$urls .="{dede:link islocal='1' text='{$servermsg1}'} $softurl1 {/dede:link}\r\n";
}

Guess you like

Origin http://43.154.161.224:23101/article/api/json?id=326534493&siteId=291194637

Dedecms template soft_add.phpSQL injection vulnerability repair method

Dream weaving dedecms upload vulnerability uploadsafe.inc.php repair method

How to fix SQL injection vulnerability in album_add.php file of Dreamweaving Dedecms

wordpress delete any file vulnerability repair method

Android-allowBackup vulnerability repair method

OpenSSH_8.3-Command injection vulnerability attack and repair

Zabbix high-risk SQL injection vulnerability and repair plan

XXE external entity injection vulnerability-CTF exam questions supplement and-and XXE vulnerability repair

Principle analysis and defense repair method of java reverse sequence vulnerability

XSS Cross-Site Scripting Attack Vulnerability Repair Method

[Vulnerability notice] JeecgBoot fixes Freemarker template injection vulnerability, vulnerability hazard level: high risk

Apache Solr Velocity template injection RCE vulnerability reproduction

Part 60: Summary and repair methods of Thymeleaf template injection vulnerabilities (Part 1)

Template injection

Article 48: Weblogic’s latest vulnerability repair method (disable T3+IIOP protocol)

[Summary] Vulnerability SQL Injection Vulnerability

Flask (Jinja2)--ssti (server-side template injection vulnerability)

Dream weaving DedeCMS select_soft_post.php arbitrary file upload vulnerability solution

dedecms breadcrumbs modification method

Nginx service security vulnerability repair

Actuator vulnerability repair in SpringBoot in Java

Weaving dream dedecms background file media_add.php arbitrary upload vulnerability solution

Solution to SQL vulnerability article_add.php caused by dedecms cookies leak

Recommended

The United States plans to restrict the export of large AI models to China and Russia

Apple to reach agreement with OpenAI to bring ChatGPT to iPhone

Ranking

whisper-webui installation tutorial is silky and easy to use

[Base] Laravel concepts laravel basis, the custom service provider: Contracts, ServiceContainer, ServiceProvider, Facades relations

Import torchvision error problem solving DLL: module not found

observer & watch & notify = pub & sub

A small turntable program [HTML + CSS + JS]

CorelDRAW 2018 shortcuts Daquan

Supervise el botón de menú para lograr un gatillo de presión prolongada

JS将时间秒转换成天小时分钟秒的字符串

RIP basic configuration

[Deleted] solution to a problem a few questions (Noip1994)

Daily

2024-05-11(32)

2024-05-10(34)

2024-05-09(32)

2024-05-08(18)

2024-05-07(34)

2024-05-06(6)

2024-05-05(0)

2024-05-04(18)

2024-05-03(8)

2024-05-02(0)